Analysis
-
max time kernel
18s -
max time network
155s -
platform
android_x64 -
resource
android-x64-20240611-en -
resource tags
androidarch:x64arch:x86image:android-x64-20240611-enlocale:en-usos:android-10-x64system -
submitted
11-06-2024 18:14
Static task
static1
Behavioral task
behavioral1
Sample
9f1b1be54ffe42b092949f769c403568_JaffaCakes118.apk
Resource
android-x86-arm-20240611-en
Behavioral task
behavioral2
Sample
9f1b1be54ffe42b092949f769c403568_JaffaCakes118.apk
Resource
android-x64-20240611-en
Behavioral task
behavioral3
Sample
9f1b1be54ffe42b092949f769c403568_JaffaCakes118.apk
Resource
android-x64-arm64-20240611-en
General
-
Target
9f1b1be54ffe42b092949f769c403568_JaffaCakes118.apk
-
Size
4.3MB
-
MD5
9f1b1be54ffe42b092949f769c403568
-
SHA1
03e57070b1fb5c5766316f8e8165d647a8fbc056
-
SHA256
4f090d929e3747308cc3e74ae9e006f4957bfe7a9ba35c4026eef99d741d7a22
-
SHA512
894a06a331c0acd65a9dcd31072e1b427d1799225300e1359104dfdde6f809fe65ea953843876fca93bf912f7d157e713f61bbcdb47e267d3dec1c47c69dbaa7
-
SSDEEP
98304:YF0tIlGQNxXXwwi6rwJgetFjgV/2TDzvDaq5FgK:YYQNxXXnnTetFjbDzvFFf
Malware Config
Signatures
-
Acquires the wake lock 1 IoCs
description ioc Process Framework service call android.os.IPowerManager.acquireWakeLock ir.basaco.taxionline.jaamejam.passenger -
Queries information about active data network 1 TTPs 1 IoCs
description ioc Process Framework service call android.net.IConnectivityManager.getActiveNetworkInfo ir.basaco.taxionline.jaamejam.passenger
Processes
Network
MITRE ATT&CK Mobile v15
Replay Monitor
Loading Replay Monitor...
Downloads
-
Filesize
16KB
MD5eb73fe10f2b958a5a59ef6841cc031ec
SHA1879c2c4cdf8c98e9ccb1ada09132893a3e8b57f6
SHA256a71a0bfb26dc1f9043f5aa320c641a54ef8b3ce6920f435173888cb5ef27695a
SHA512096ad4c3bd6a8dd7f2894d5c2e298cb1eeefd5d2fe25d96ed8b0be79f6f92a153699247c46a21ff4d4afae2c5ec3d1697a95fd7007d8db63ef524f41bfc77f9a
-
Filesize
16KB
MD5a0ff4dd177f83551ec655d8102d0c639
SHA166414ea5a163790f5d2cbfa5bf03739d672d9ede
SHA256437abdf60557593e5da3f1b59b95b35f44fdd86aa31c49d8e7802a9210d8d61f
SHA512d09f260fbe59504052d911ac907efc5e9ea023c361e38007bef5bfbcbce8cde562f579f74348d6922354f4fc4b56e700db65866f006411ebe3467f799b7832cd
-
Filesize
16KB
MD5b8214b7761cc58f5aed7e73ac28e890b
SHA1503ec82660f48a738b95778b61c5020dbf702f6f
SHA256985775578687724bf2e9f94143c8ebf03415b3f1234774228007b0b2a6a1dcff
SHA512a6169f27fe5a38a422eda24e93737bb5dc407abb673be1c665e1cb822bb899320061b1fd560adc6452078ce6b3cf380ea1c75ca4446c6e4a455660959a95210c
-
Filesize
16KB
MD5897e4755add41a4e259c3844891b5dd0
SHA1872a6c80eda5e985c04a2bfff02ece52d832551b
SHA256a8d5de7ea8f00e23a711d7e76c37a006c9fd6cc552e79c83a04b6a6f52777916
SHA5125169b2f13f0d072ee37947ce4a7fcd4d9db84eed165db6888fd41bee4ca6d3f27635065ea932fed40518e8d54b76c429a627f03d42eb1451ae1b67accad4ce74
-
Filesize
16KB
MD5334a939b836eeaf0568a553d54f645c6
SHA1c22a8e4e479a4a8a14b0a7f8b9109be615325a28
SHA2567fefedd227166f26d5d5b79b95d8f8bf56a6479ce47fa08c7b8a5019b86d11b4
SHA512855aca2ad074fe0998ced9ff7185e656e46c65d3c315a417cf737b5d142d70827861128e273aea62418d854c310f665a2003f4319e6ae592af0809e01093ed41
-
Filesize
16KB
MD57637fa900d29d6e7df8beb3551adab1b
SHA106317a0ff889e0f60e499fd27d4f2d3d5b1580e3
SHA256a7f53e525d896c4820b925abd89f674fd5dd09de5b32c77a69aaf19dd6efaa38
SHA5128bb374aeb0ff99d53fe4ab8a346daf6e9d92f9385f34e7dd7a63dc446a199f43dd317f9b25d8b2217408678fd7eef5babac51b5adbe06c234e3ca75019b72f78
-
/data/data/ir.basaco.taxionline.jaamejam.passenger/databases/google_app_measurement_local.db-journal
Filesize512B
MD578ead53726cd59bee7daef08430dbd1e
SHA1fe5b82fdd14a5fb4748a9fa0e6e345442698242b
SHA256b931741e894f83623e01be18ddb9754bbf5b5057b56b372c00b4da3f8f93418d
SHA5128734b51ec29469a012e4c95b939d253ca8f07637391fa15f91735bca0aa59968e928093b029418b9b5529c98db92f99da67004822c9e438679217907fa36fe61
-
/data/data/ir.basaco.taxionline.jaamejam.passenger/databases/google_app_measurement_local.db-journal
Filesize8KB
MD52768d60bb9ebf91b3e3d95cbd51e97c6
SHA145be17e834d31193e5770e61e268c397a8dd22d3
SHA25645bbe7cb70d9e6bff4a24322471ffc7a60510f82d9eda878ac9a05546cc3b3c0
SHA512bd10649f7918d0502781ed2d2e3e96128147061d33572dccfc7c4ce8940f5ac1e97ef6aead72c4d4c5f7656a1e7e3f940a5229a2fa916c7fc3335b46b8983f11
-
/data/data/ir.basaco.taxionline.jaamejam.passenger/databases/google_app_measurement_local.db-journal
Filesize4KB
MD5cd60407507724124447fc5f7ae374b2f
SHA1ce77b2dec1449385576b196bb72acaa96fc7ab0a
SHA2563d9e85772ce06a73969bd74de14cfcf646a3c784e742c986c691ba8fad1d7a3f
SHA512c1609d7d44ab211803ea645a0f6177bd16d5c24f6653a00946c86403a5029af312b5ea5e105006ce45273fd3de9129ae23245ddeb26bc41a40e0951e4ee2dff4
-
/data/data/ir.basaco.taxionline.jaamejam.passenger/databases/google_app_measurement_local.db-journal
Filesize8KB
MD589cb0697b011e6d6d0c1e98dd1593fe4
SHA1e7b4fb5e6d681ac074c074e72ed25437311b7c95
SHA256ed9b6f0d97b0861a4ce4f7572fdb299d1db085b35312fddaa533bcbdcadccab8
SHA512cbbd720b7eccf17fa938a4c6d7e9a02a785ca669b7c17a6bb6da2cf8967fffc562b1282547c88bec2e7dd18dc7271a732d32d8ec443c6e5c227b4e321706668b
-
/data/data/ir.basaco.taxionline.jaamejam.passenger/databases/google_app_measurement_local.db-journal
Filesize8KB
MD5d7efaed730a7b7f5be4c77b75baea117
SHA1afd2716a9e784b61973c10d2884ee32ff71385f5
SHA256a05b197af9fc7961ee9bd8d5d8a12e0fbc2113b5ce968419dbe35bc5cbc3e3bd
SHA512e296258716400155b1c9f4c4976c285d29703fc27be4f7ed8228fca196a4295bac34398aa471f3e0310dc1821fe6986ffa1b70dcd48bbf1e17a6396776fc3410
-
/data/data/ir.basaco.taxionline.jaamejam.passenger/databases/google_app_measurement_local.db-journal
Filesize8KB
MD5ee190000405f631d2c018593670c7710
SHA1fa05a3e6c4b95f40dd3a273f510593414d237004
SHA2563b6a4cf9765648d5de5f3871101aa17427840e578d3872c8533a0f382acd7f28
SHA51269200cd89d2c1c89d9e92b1e607c12507881aabd3661fa4491e179e0aba79900107ca0d94eb08e6ede3b81827949e7bd4b4c9c8773393f784484e293b10449f4